-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 05 Jun 2003 01:37:41 -0600, [EMAIL PROTECTED] wrote:
> My IPTABLES rules include a rule for what IP addresses I > allow FTP connectons from, > > ## Allowed FTP clients listed here: > $IPTABLES -A ALLOW_PORTS_I_EXT -p tcp -s www.xxx.yyy.zzz --dport 21 ACCEPT > > > and then rules of the sort > > ## Accept Established, Related. > $IPTABLES -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT > | > for both input and output to allow the data connection. > > PROBLEM: > If I just run the IPTABLES rules, and then try to connect from the > outside, I can connect, but trying to do a 'dir' produces no output. > Clearly the data connection is being refused. > > If I then do a /sbin/modprobe ip_conntrack_ftp and try again, everything > works fine. > > SO how should this module be getting loaded ??? Add this to /etc/modules.conf: add below ip_tables ip_conntrack_ftp - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE+30ZP0iMVcrivHFQRAgQmAJ0YyEWP5oWcrJ2PwqhOIv0CgV87/QCdEfTp pcPTJ80B8fy/ChUqYQ6XSi8= =gP/P -----END PGP SIGNATURE----- -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
